CVE-2021-40642

Published: Jun 29, 2022Modified: Nov 21, 2024

4.3

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

Exploitability: 2.8 / Impact: 1.4

Source: NVD

Description

Textpattern CMS v4.8.7 and older vulnerability exists through Sensitive Cookie in HTTPS Session Without 'Secure' Attribute via textpattern/lib/txplib_misc.php. The secure flag is not set for txp_login session cookie in the application. If the secure flag is not set, then the cookie will be transmitted in clear-text if the user visits any HTTP URLs within the cookie's scope. An attacker may be able to induce this event by feeding a user suitable links, either directly or via another web site.

Affected (1)

Products: Textpattern: Textpattern

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Textpattern Textpattern	Up to 4.8.7

Related CWEs

Missing Encryption of Sensitive Data

The product does not encrypt sensitive or critical information before storage or transmission.

References (4)

https://github.com/textpattern/textpattern/commit/211fab0093999f59b0b61682aa988ac7d8337aa9

Source: cve@mitre.org

PatchThird Party Advisory

https://www.huntr.dev/bounties/aadbe434-a376-443b-876f-2a1cbab7847b/

Source: cve@mitre.org

Permissions RequiredThird Party Advisory

https://github.com/textpattern/textpattern/commit/211fab0093999f59b0b61682aa988ac7d8337aa9

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party Advisory

https://www.huntr.dev/bounties/aadbe434-a376-443b-876f-2a1cbab7847b/

Source: af854a3a-2127-422b-91ae-364da2661108

Permissions RequiredThird Party Advisory

Timeline

No history available yet.